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— The MAILING DATE of this communication appears on the cover sheet with the correspondence address — 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )[X] Responsive to communication(s) filed on 03 April 2001 . 
2a)D This action is FINAL. 2b)M This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 

Disposition of Claims 

4) M Claim(s) 1-22 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) [x] Claim(s) 1^22 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or(f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

1 . This action is in response to the communication filed on April 3, 2001 . 
Claims 1 - 22 were received for consideration. No preliminary amendments for 
the claims were filed. Claims 1 - 22 are currently being considered. 

Information Disclosure Statement 

2. Initialed and dated copies of Applicant's IDS form 1449 are attached to the 
Office action. 

Claim Objections 

3. Claims 13 and 20 are objected to because of the following informalities: 
The word "comprising" in the preamble should be followed by a colon ":" and not 
a semicolon Appropriate correction is required. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 
122(b), by another filed in the United States before the invention by the applicant for patent or 
(2) a patent granted on an application for patent by another filed in the United States before 
the invention by the applicant for patent, except that an international application filed under 
the treaty defined in section 351(a) shall have the effects for purposes of this subsection of an 
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application filed in the United States only if the international application designated the United 
States and was published under Article 21 (2) of such treaty in the English language. 

4. Claims 1 -22 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Schneider etal. (U.S. Patent 6,105,027). 

Regarding claiml , Schneider discloses: 

A method for evaluating a set of credentials comprising at least one group 
credential comprising: 

ascertaining at least one first trust rating within at least one of said 
credentials within said set of credentials including said group credential, wherein 
each of said first trust ratings is associated with a level of confidence in 
information being certified within the respective credential (column 9 lines 1 - 58, 
column 1 8 lines 1 2 - 67); 

determining a second trust rating for said set of credentials based, at least 
in part, upon an analysis of said at least one first trust rating (column 9 lines 1 - 
58, column 1 8 lines 1 2 - 67); and 

providing a signal in the event said second trust rating satisfies 
predetermined criteria (column 20 lines 4-11). 

Regarding claim 13, Schneider discloses: 

A system for evaluating a set of credentials including at least one group 
credential comprising: 
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a memory containing an access control program (column 7 lines 42 - 65); 

and 

a processor operative to execute said access control program (column 7 
lines 42 - 65); 

said access control program comprising: 

program code for ascertaining at least one first trust rating within at least 
one of said credentials within said set of credentials including said group 
credential, wherein each of said first trust ratings is associated with a level of 
confidence in information being certified within the respective credential (column 
9 lines 1 -58, column 18 lines 12-67); 

program code for determining a second trust rating for said set of 
credentials based, at least in part, upon an analysis of said at least one first trust 
rating (column 9 lines 1 -58, column 18 lines 12 -67); and 

program code for providing a signal in the event said second trust rating 
satisfies predetermined criteria (column 20 lines 4-11). 

Regarding claim 18, Schneider discloses: 

A computer program product including a computer readable medium, said 
computer readable medium having an access control program stored thereon, 
said access control program for execution on a processor and comprising: 

program code for ascertaining at least one first trust rating within at least 
one credential within a set of credentials including group credential, wherein each 
of said first trust ratings is associated with a level of confidence in information 
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being certified within the respective credential (column 9 lines 1 - 58, column 18 
lines 12-67); 

program code for determining a second trust rating for said set of 
credentials based, at least in part, upon an analysis of said at least one first trust 
rating (column 9 lines 1 -58, column 18 lines 12 - 67); and 

program code for providing a signal in the event said second trust rating 
satisfies predetermined criteria (column 20 lines 4-11). 

Regarding claim 19, Schneider discloses: 

A computer data signal, said computer data signal including a computer 
program for use in evaluating a set of credentials, said computer program 
comprising: 

program code for ascertaining at least one first trust rating within at least 
one credential within said set of credentials, wherein said set of credentials 
includes a group credential and wherein each of said first trust ratings is 
associated with a level of confidence in information being certified within the 
respective credential (column 9 lines 1 - 58, column 18 lines 12 - 67); 

program code for determining a second trust rating for said set of 
credentials based, at least in part, upon an analysis of said at least one first trust 
rating (column 9 lines 1 -58, column 18 lines 12 - 67); and 

program code for providing a signal in the event said second trust rating 
satisfies predetermined criteria (column 20 lines 4-11). 
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Regarding claim 20, Schneider discloses: 

A system for evaluating a set of credentials including at least one group 
credential comprising: 

means for storing an access control program (column 7 lines 42 - 65); and 

means for executing said access control program out of said storing 
means, said access control program including: 

program code for ascertaining at least one first trust rating within at least 
one of said credentials within said set of credentials including said group 
credential, wherein each of said first trust ratings is associated with a level of 
confidence in information being certified within the respective credential (column 
9 lines 1 - 58, column 1 8 lines 1 2 - 67); 

program code for determining a second trust rating for said set of 
credentials based, at least in part, upon an analysis of said at least one first trust 
rating (column 9 lines 1 - 58, column 18 lines 12 - 67); and 

program code for providing a signal in the event said second trust rating 
satisfies predetermined criteria (column 20 lines 4-11). 

Regarding claim 21, Schneider discloses: 

A method for evaluating a set of credentials comprising at least one group 
credential comprising: 

ascertaining at least one first trust rating within at least one of said 
credentials within said set of credentials including said group credential, wherein 
each of said first trust ratings is associated with a level of confidence in 
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information being certified within the respective credential (column 9 lines 1 - 58, 
column 18 lines 12-67); 

determining a second trust rating for said set of credentials based, at least 
in part, upon an analysis of said at least one first trust rating (column 9 lines 1 - 
58, column 18 lines 12-67); and 

storing said second trust rating for subsequent use (column 9 lines 40 - 

67). 

Claim 2 is rejected as applied above in rejecting claim 1 . Furthermore, 
Schneider discloses: 

The method of claim 1 wherein said providing step includes the step of 
comparing said second trust rating to a predetermined trust rating threshold and 
wherein said predetermined criteria comprises said predetermined trust rating 
threshold (column 9 lines 1 - 58, column 18 lines 12-67, column 19 line 45 - 
column 10 line 13). 

Claim 3 is rejected as applied above in rejecting claim 1 . Furthermore, 
Schneider discloses: 

The method of claim 1 wherein said determining step comprises the step 
of assigning said second trust rating equal to the lowest trust rating among the 
first trust ratings of the respective credentials within a single certification path 
(column 9 lines 3 - 60, column 20 lines 42 - 47). 
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Claim 4 is rejected as applied above in rejecting claim 1 . Furthermore, 
Schneider discloses: 

The method of claim 1 further including, in the event said set of credentials 
forms a plurality of certification paths having at least one credential in each of 
said paths, the steps of: 

determining for each of said plurality of certification paths a third trust 
rating equal to the lowest trust rating in the credentials of the respective 
certification path (column 9 lines 3 - 60, column 20 lines 42 - 47); and 

assigning said second trust rating equal to the highest trust rating of said 
third trust ratings (column 9 lines 3 - 60, column 20 lines 42 - 47). 

Claim 6 is rejected as applied above in rejecting claim 1 . Furthermore, 
Schneider discloses: 

6. The method of claim 1 wherein said signal comprises an indication that 
access to a resource should be granted (column 20 lines 4-11). 

Claim 14 is rejected as applied above in rejecting claim 13. Furthermore, 
Schneider discloses: 

The system of claim 13 wherein said access control program further 
includes program code for comparing said second trust rating to a predetermined 
trust rating threshold and wherein said predetermined criteria comprises said 
predetermined trust rating threshold (column 9 lines 1 - 58, column 18 lines 12 - 
67, column 19 line 45 - column 10 line 13). 
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Claim 15 is rejected as applied above in rejecting claim 13. Furthermore 
Schneider discloses: 

The system of claim 13 wherein said program code for determining said 
second trust rating includes program code for assigning said second trust rating 
as the lowest trust rating among the respective credentials within a single 
certification path (column 9 lines 3 - 60, column 20 lines 42 - 47). 

Claim 16 is rejected as applied above in rejecting claim 13. Furthermore, 
Schneider discloses: 

The system of claim 13 wherein said access control program further 
includes program code operative in the event said set of credentials forms plural 
certification paths for: 

determining for each of said plural certification paths a third trust rating 
equal to the lowest trust rating in the credentials within the respective certification 
path (column 9 lines 3 - 60, column 20 lines 42 - 47); and 

assigning said second trust rating equal to the highest trust rating of said 
third trust ratings (column 9 lines 3 - 60, column 20 lines 42 - 47). 

Claim 17 is rejected as applied above in rejecting claim 13. Furthermore, 
Schneider discloses: 

The system of claim 13 wherein said signal comprises an indication that 
access to a resource should be granted (column 20 lines 4-11). 
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Claim 22 is rejected as applied above in rejecting claim 21 . Furthermore, 
Schneider discloses: 

The method of claim 21 further including the step of inserting said second 
trust rating stored in said storing step in another group credential (column 9 lines 
40 - 67). 

Claim 5 is rejected as applied above in rejecting claim 4. Furthermore, 
Schneider discloses: 

The method of claim 4 wherein said providing step includes the step of 
comparing said second trust rating to said predetermined criteria (column 9 lines 
1 - 58, column 18 lines 12-67, column 19 line 45 - column 10 line 13). 

Claim 7 is rejected as applied above in rejecting claim 6. Furthermore, 
Schneider discloses: 

The method of claim 6 further including the step of granting access to said 
resource in response to said indication (column 20 lines 4-11). 

Claim 12 is rejected as applied above in rejecting claim 3. Furthermore, 
Schneider discloses: 

The method of claim 3 wherein said ascertaining step further includes the 
step of obtaining an identity credential trust rating associated with an identity 
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credential within said certification path (column 9 lines 1 -58, column 18 lines 12 
-67). 

Claim 8 is rejected as applied above in rejecting claim 7. Furthermore, 
Schneider discloses: 

The method of claim 7 wherein said resource comprises a file on a file 
server (column 19 lines 45 - 67). 

Claim 9 is rejected as applied above in rejecting claim 7. Furthermore, 
Schneider discloses: 

The method of claim 7 wherein said resource comprises a web page 
(column 19 lines 45 - 67). 

Claim 10 is rejected as applied above in rejecting claim 7. Furthermore, 
Schneider discloses: 

The method of claim 7 wherein said resource comprises a secure area 
(column 19 lines 45 - 67). 

Claim 1 1 is rejected as applied above in rejecting claim 7. Furthermore, 
Schneider discloses: 

The method of claim 7 wherein said resource comprises a database 
(column 1 9 lines 45 - 67). 
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Conclusion 



5. Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Kaveh Abrishamkar whose telephone number 
is 703-305-8892. The examiner can normally be reached on Monday thru Friday 
8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Ayaz Sheikh can be reached on 703-305-9648. The fax 
phone number for the organization where this application or proceeding is 
assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). 



KA 

08/20/2004 




